If exploited, attackers can gain full access to SharePoint content and potentially pivot to Outlook, Teams, and OneDrive.

Microsoft says the Chinese threat actors Linen Typhoon, Violet Typhoon, and Storm-2603 have been exploiting the ToolShell ...

Hackers with ties to the Chinese government have been linked to a recent wave of widespread attacks targeting a Microsoft ...

A botched security patch by Microsoft has left its widely-used SharePoint Server exposed to a critical vulnerability—fueling ...

The active exploitation of a zero-day vulnerability in Microsoft SharePoint has led to a sweeping cyberattack involving over ...

Microsoft has started releasing updates to fix the exploited SharePoint zero-days tracked as CVE-2025-53770 and CVE-2025-53771.

This Alert was updated to reflect newly released information from Microsoft, and to correct the actively exploited Common Vulnerabilities and Exposures (CVEs), which have been confirmed ...

A security patch released by Microsoft last month failed to fully fix a critical flaw in U.S. tech giant's SharePoint server ...

A security patch released by Microsoft earlier this month failed to fully fix a critical flaw in the U.S. tech company's ...

An ongoing cyberattack campaign known as “ToolShell” is exploiting on-premises Microsoft SharePoint Servers and has ...

The term "zero-day" attack refers to when a previously unknown vulnerability is targeted. Tens of thousands of servers are ...

While all patches against ‘ToolShell’ exploits are now available for on-premises SharePoint Servers, attackers will be ...